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" The MAILING DATE of this communication appears on the cover sheet with the correspondence address - 
Period for Reply 



A SHORTENED STATUTORY PERIOD FOR REPLY IS SET TO EXPIRE 3 MONTH(S) FROM 
THE MAILING DATE OF THIS COMMUNICATION. 

- Extensions of time may be available under the provisions of 37 CFR 1.1 36(a). In no event, hov^^ever, may a reply be timely filed 
after SIX (6) MONTHS from the mailing date of this communication. 

- If the period for reply specified above is less than thirty (30) days, a reply within the statutory minimum of thirty (30) days will be considered timely. 

- If NO period for reply Is specified above, the maximum statutory period will apply and will expire SIX (6) MONTHS from the mailing date of this communication. 

- Failure to reply within the set or extended period for reply will, by statute, cause the application to become ABANDONED (35 U.S.C. § 133). 
Any reply received by the Office later than three months after the mailing date of this communication, even if timely filed, may reduce any 
earned patent term adjustment. See 37 CFR 1.704(b). 

Status 

1 )S Responsive to connmunication(s) filed on 15 December 2000 , 
2a)S This action is FINAL. 2b)n This action is non-final. 

3) D Since this application is in condition for allowance except for formal matters, prosecution as to the merits is 

closed in accordance with the practice under Ex parte Quayle, 1935 CD, 11, 453 O.G. 213. 

Disposition of Claims 

4) 13 Claim{s) 1-54 is/are pending in the application. 

4a) Of the above claim(s) is/are withdrawn from consideration. 

5) n Claim(s) is/are allowed. 

6) ^ Claim(s) 1-54 is/are rejected. 

7) 0 Claim(s) is/are objected to. 

8) D Claim(s) are subject to restriction and/or election requirement. 

Application Papers 

9) 0 The specification is objected to by the Examiner. 

10) 0 The drawing(s) filed on is/are: a){3 accepted or b)n objected to by the Examiner. 

Applicant may not request that any objection to the drawing(s) be held in abeyance. See 37 CFR 1 .85(a). 
Replacement drawing sheet(s) including the correction is required if the drawing(s) is objected to. See 37 CFR 1.121(d). 

1 1) 0 The oath or declaration is objected to by the Examiner. Note the attached Office Action or form PTO-152. 

griorit v^under 35 U.S.C. § 119 

12) 0 Acknowledgment is made of a claim for foreign priority under 3'5"lJ7S:Cr§~1''i9(a)=(d')-or-(T)T~ 

a)n All b)n Some * c)^ None of: 

1 .□ Certified copies of the priority documents have been received. 

2. n Certified copies of the priority documents have been received in Application No. . 

3. n Copies of the certified copies of the priority documents have been received in this National Stage 

application from the International Bureau (PCT Rule 17.2(a)), 
* See the attached detailed Office action for a list of the certified copies not received. 
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Final rejection 
Response to Amendment 

1 . The examiner accepts the amended specification and abstract. 

2. The examiner accepts the amended claim 40 to correct typographical errors. 

3. Applicant's arguments/amendments with respect to claims 1,9, 17, 25, 30, 35, 40, 45, and 
50 filed on December 15, 2000 have been considered but are moot in view of the new ground(s) 
of rejection. 

Claim Rejections - 35 USC §103 

4. The following is a quotation of 35 U.S.C. 1 03(a) which forms the basis for all 

obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set forth in 
section 102 of this title, if the differences between the subject matter sought to be patented and the prior art are 
such that the subject matter as a whole would have been obvious at the time the invention was made to a person 
having ordinary skill in the art to which said subject matter pertains. Patentability shall not be negatived by the 
manner in which the invention was made. 

5. Claims 1-6, 8-14, 16-22, and 24-54 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over French et al. (French Pub. No.: US 2001/0001877 Al) in view of Schell et al. 
^SchelTP^^ — 

As per claims 1, 9, and 17, French teaches an apparatus/a computer program product on a 
computer usable medium/method for managing a digital certificate on a distributed computing 
system, the apparatus comprising: 

at least one reception software module that receives a request from a user and generates a 
reception event corresponding to that request (French Page 4 par. 0066, Fig. 45 No. 130; 
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application server receives user requests (1 10), Fig, 45 No. 120 authentication server receives 
user request from user (1 10) or application server (130)); 

at least one processing software module, communicatively coupled to the at least one 
reception software module and responsive to a propagated event, that performs an action 
regarding the management of the digital certificate (French Page 9 par. 0156, and Fig. 45; 
authentication server (120) coupled to application server (130) and responsive to propagated 
event); 

any one of the processing software modules replaceable with another software module 
responsive to the same propagated event but performing another action regarding the 
management of the digital certificate (French Page 4 par. 0066; client 110 and authentication 
server 120 can communicate for requested data directly without passing through application 
server 130); and 

the software modules executing independently from one another (French Fig. 45; 
application software module (130) is vendor's server, user (110), and authentication server (120) 
are all running separately). 



French fails to explicitly teach: 

a combination of processing software modules perform functionality representing a 
registration authority and/or a certificate authority; and 

each of the processing software modules are adaptively configurable to perform 
specifiable functionality in the management of the digital certificate. 
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However Schell discloses: 

a combination of processing software modules perform functionality representing a 
registration authority and/or a certificate authority (Schell Fig. 5 No. I52a-f, and col. 19 lines 29- 
67); and 

each of the processing software modules are adaptively configurable to perform 
specifiable functionality in the management of the digital certificate (Schell Fig. 5 No. 152a-f, 
Fig. 4, and col. 19 lines 29-67). 

Therefore it would have been obvious to one having ordinary skill in the art at the time of 
the invention was made to employ the teachings of Schell within the system of French because it 
would allow to manage digital signature by communicating cascadly/sequentially to perform 
actions related to digital certificate. Independent and communicatively coupled certificate 
authority modules perform actions like generating private/public key pairs for digital certificate 
by root certifier authority 152a, certifying digital signature by CMC signature root 152b, and 
verifying the certificate by Module signature authority 152d and Server CA (Schell Col. 19 lines 
30-67 and Fig. 5). 



As per claims 25, 30, and 35, French teaches an apparatus/a computer program product on a 
computer usable medium/method for managing a digital certificate on a distributed computing 
system, the apparatus comprising: 

a plurality of reception software modules that receive a request from a user and generate 
a reception event corresponding to that request (French Page 9 par. 0156, and Fig. 45; 
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authentication server (120) coupled to application server (130) and responsive to propagated 
event); 

at least one processing software module, communicatively coupled to the at least one 
reception software module and responsive to a propagated event, that performs an action 
regarding the management of the digital certificate (French Page 4 par. 0066; client 1 10 and 
authentication server 120 can communicate for requested data directly without passing through 
application server 130); 

any one of the plurality of reception software modules replaceable with another reception 
software module responsive to a request in a differing format, and propagating the same event as 
that by the replaced reception software module (French Page 4 par. 0066; client 110 and 
authentication server 120 can communicate for requested data directly without passing through 
application server 1 30); and 

the software modules executing independently from one another (French Fig. 45; 
application software module (130) is vendor's server, user (1 10), and authentication server (120) 
are all running separately). 



French fails to explicitly teach: 

a combination of processing software modules perform functionality representing a 
registration authority and/or a certificate authority; and 

wherein any of the reception software modules are adaptively configurable to perform 
specifiable functionality in the management of the digital certificate. 
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However Schell discloses: 

a combination of processing software modules perform functionality representing a 
registration authority and/or a certificate authority (Schell Fig. 5 No. 152a-f, and col. 19 lines 29- 
67); and 

wherein any of the reception software modules are adaptively configurable to perform 
specifiable functionality in the management of the digital certificate (Schell Fig. 5 No. 152a-f, 
Fig. 4, and col. 19 lines 29-67). 

Therefore it would have been obvious to one having ordinary skill in the art at the time of 
the invention was made to employ the teachings of Schell within the system of French because it 
would allow to manage digital signature by communicating cascadly/sequentially to perform 
actions related to digital certificate. Independent and communicatively coupled certificate 
authority modules perform actions like generating private/public key pairs for digital certificate 
by root certifier authority 152a, certifying digital signature by CMC signature root 152b, and 
verifying the certificate by Module signature authority 152d and Server CA (Schell Col. 19 lines 
30-67 and Fig. 5). 



As per claims 40, 45, and 50, French teaches an apparatus/a computer program product on a 
computer usable medium/method for managing a digital certificate on a distributed computing 
system, the apparatus comprising: 

at least one reception software module that receives a request from a user and generates a 
reception event corresponding to that request (French Page 4 par. 0066, Fig. 45 No. 130; 
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application server receives user requests (110), Fig. 45 No. 120 authentication server receives 
user request from user (110) or application server (130)); 

at least one processing software module, communicatively coupled to the at least one 
reception software module and responsive to a propagated event, that performs an action 
regarding the management of the digital certificate (French Page 9 par. 0156, and Fig. 45; 
authentication server (120) coupled to application server (130) and responsive to propagated 
event); 

at least one transmission software module, communicatively coupled to the at least one 
processing software module, that transmits information regarding the digital certificate on the 
distributed computing system in a first format in response to a propagated event (French Fig. 45; 
authentication server (120) transmits information to application server (130) and coupled to 
application server (120), application server (130) is also a processor and transmits digital 
certificates to users); 

the at least one transmission software module replaceable with another reception software 
module responsive to the same event that the replaced transmission software module is 
responsive to, and transmitting information in a second format (French Page 4 par. 0066; client 
1i"0wd'^authenticati'oTi'server~r20lalf^ passing 
through application server 130); and 

the software modules executing independently from one another (French Fig. 45; 
application software module (130) is vendor's server, user (1 10), and authentication server (120) 
are all running separately). 
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French fails to explicitly teach: 

such that a combination of processing software modules perform functionality 
representing a registration authority and/or a certificate authority; and 

wherein any of the transmission software modules are adaptively configurable to perform 
specifiable functionality in the management of the digital certificate. 

However Schell discloses: 

a combination of processing software modules perform functionality representing a 
registration authority and/or a certificate authority (Schell Fig. 5 No. 152a-f, and col. 19 lines 29- 
67); and 

wherein any of the transmission software modules are adaptively configurable to perfomi 
specifiable functionality in the management of the digital certificate (Schell Fig. 5 No. 152a-f, 
Fig. 4, and col. 19 lines 29-67). 

Therefore it would have been obvious to one having ordinary skill in the art at the time of 
the invention was made to employ the teachings of Schell within the system of French because it 
would allow to manage digital signature by communicating cascadiy7sequentlariy"to perform 
actions related to digital certificate. Independent and communicatively coupled certificate 
authority modules perform actions like generating private/public key pairs for digital certificate 
by root certifier authority 152a, certifying digital signature by CMC signature root 152b, and 
verifying the certificate by Module signature authority 152d and Server CA (Schell Col. 19 lines 
30-67 and Fig. 5). 
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As per clams 2, 10, 18, 26, 31, 36, 41, 46, and 51, both French and Schell teach all the subject 
matter as described above. In addition, French teaches the apparatus/a computer program product 
on a computer usable medium/method, wherein the reception software module is implemented in 
a computing system independent manner (French Fig. 45; the user 1 10, authentication server 
120, and vendor server 1 30 are implemented independent manner). 

As per clams 3, 1 1, 19, 27, 32, 37, 42, 47, and 52, both French and Schell teach all the subject 
matter as described above. In addition, French teaches the apparatus/a computer program product 
on a computer usable medium/method wherein the reception software module is implemented in 
Java (French Page 3 par. 0062, and page 4 par. 0071). 

As per clams 4, 12, and 20, both French and Schell teach all the subject matter as described 
above. In addition, French teaches the apparatus/a computer program product on a computer 
usable medium/method wherein one of the at least one processing software modules is a sink 
bean (French Page 1 1 par. 0180). 



As per clams 5, 13, 21, 28, 33, 38, 43, 48, and 53, both French and Schell teach all the subject 
matter as described above. In addition, French teaches the apparatus/a computer program product 
on a computer usable medium/method wherein the sink bean is a certificate generation bean 
(French Page 11 par. 0173). 
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As per clams 6, 14, 22, 29, 34, 39, 44, 49, and 54, both French and Schell teach all the subject 
matter as described above. In addition, French teaches the apparatus/a computer program product 
on a computer usable medium/method wherein one of the at least one processing software 
modules publishes information regarding the management of the certificate (French Page 1 1 par. 
0180). 

As per clams 8, 16, and 24 both French and Schell teach all the subject matter as described 
above. In addition, French teaches the apparatus/a computer program product on a computer 
usable medium/method wherein two of the software modules operate on different computing 
devices (French Page 1 par. 0019, and Fig. 45; authentication server 120 and application server 
130, and user 110). 

6. Claims 7, 15, and 23 are rejected under 35 U.S.C. 103(a) as being unpatentable over 
French et al (French Pub. No.: US 2001/0001877 Al) in view of Schell et al. (Schell, Patent 
No.: US 6,751, 735 Bl), and further in view of Smith et al. (Smith, Patent No.: US 6,651,166 
Bl). 



As per clams 7, 15, and 23, both French and Schell teach all the subject matter as described 
above.. French and Schell fail to teach LDAP directory. 
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However Smith teaches the apparatus/a computer program product on a computer usable 
medium/method wherein the one of the at least one software modules publishes infomiation in 
an LDAP directory. 

Therefore it would have been obvious to one having ordinary skill in the art at the time of 
the invention was made to employ the teachings of Smith within the combination system of 
French and Schell because it would allow an Entrust certificate management system (Smith Col. 
5 lines 28-34). 

7. Applicant's amendment necessitated the new ground(s) of rejection presented in this 
Office action. Accordingly, THIS ACTION IS MADE FINAL. See MPEP § 706.07(a). 
Applicant is reminded of the extension of time policy as set forth in 37 CFR 1 .136(a). 

A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within TWO 
MONTHS of the mailing date of this final action and the advisory action is not mailed until after 
the end of the THREE-MONTH shortened statutory period, then the shortened statutory period 
jwiliejcpke_QnJhe^date-tha 

CFR 1.136(a) will be calculated from the mailing date of the advisory action. In no event, 
however, will the statutory period for reply expire later than SIX MONTHS from the date of this 
final action. 
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8. 



Any inquiry concerning this communication or earlier communications from the 



examiner should be directed to Eleni A Shiferaw whose telephone number is 571-272-3867. The 
examiner can normally be reached on Mon-Fri 8:00am-5:00pm. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Ayaz R Sheikh can be reached on 571-272-3795. The fax phone number for the 
organization where this application or proceeding is assigned is 703-872-9306. 

Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or Public PAIR. Status information for unpublished 
applications is available through Private PAIR only. For more information about the PAIR 
system, see* http://pair-direct, uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). 
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